Fortinet black logo

Administration Guide

Getting started with managed mode

Getting started with managed mode

In managed mode, FortiClient software is used with FortiGate or EMS. Another option is integrated mode where FortiGate and EMS are used together with FortiClient.

In managed mode, FortiClient software is installed to computers or devices on your network that have Internet access and are running a supported OS. The computers or devices are referred to as endpoints. After FortiClient software is installed on endpoints, FortiClient performs the following actions:

  • Automatically connects to FortiGuard Center to protect the endpoint
  • Automatically attempts to connect FortiClient Telemetry to FortiGate or EMS

The endpoint user confirms the request to complete the FortiClient Telemetry connection to FortiGate or EMS.

Administrators can optionally configure a FortiClient Telemetry connection that requires no confirmation by the endpoint user. See Custom FortiClient installation files.

After FortiClient Telemetry is connected to FortiGate or EMS, FortiClient receives a profile from FortiGate and/or EMS, and the endpoint is managed.

  1. (Administrators) Configure FortiGate and/or EMS to work with FortiClient. The following table identifies where to find information about configuring FortiGate and EMS.

    FortiGate

    See the FortiOS Handbook - Security Profiles.

    EMS

    See the FortiClient EMS Administration Guide.

  2. (Administrators) Prepare to provision FortiClient. See Provisioning Preparation. Administrators can choose which FortiClient modules to install. See FortiClient setup types and modules.
  3. (Administrators) Provision FortiClient on endpoints. See Provisioning.

    After FortiClient installs on endpoints, FortiClient Telemetry attempts connection to FortiGate or EMS. See FortiClient Telemetry.

    After FortiClient Telemetry connects to FortiGate or EMS, FortiClient receives a profile from FortiGate and/or EMS. The computer with FortiClient installed and FortiClient Telemetry connected is now a managed endpoint.

  4. (Administrators) Manage endpoints using EMS. Administrators can also use FortiOS to monitor endpoints.
  5. (Endpoint users) Configure the installed components using FortiClient. Depending on what FortiClient modules were installed, whether FortiGate compliance rules are used, and whether an EMS administrator has locked settings, endpoint users can configure none or some of the following modules:
    • Sandbox Detection
    • AntiVirus
    • Web Filter
    • Application Firewall
    • Remote Access
  6. (Endpoint users) Use the installed modules in FortiClient. Depending on what modules were installed, one, more, or all of the following tabs are available in FortiClient:
    • Compliance & Telemetry
    • Malware Protection
    • Web Filter
    • Application Firewall
    • Vulnerability Scan
    • Remote Access

Getting started with managed mode

In managed mode, FortiClient software is used with FortiGate or EMS. Another option is integrated mode where FortiGate and EMS are used together with FortiClient.

In managed mode, FortiClient software is installed to computers or devices on your network that have Internet access and are running a supported OS. The computers or devices are referred to as endpoints. After FortiClient software is installed on endpoints, FortiClient performs the following actions:

  • Automatically connects to FortiGuard Center to protect the endpoint
  • Automatically attempts to connect FortiClient Telemetry to FortiGate or EMS

The endpoint user confirms the request to complete the FortiClient Telemetry connection to FortiGate or EMS.

Administrators can optionally configure a FortiClient Telemetry connection that requires no confirmation by the endpoint user. See Custom FortiClient installation files.

After FortiClient Telemetry is connected to FortiGate or EMS, FortiClient receives a profile from FortiGate and/or EMS, and the endpoint is managed.

  1. (Administrators) Configure FortiGate and/or EMS to work with FortiClient. The following table identifies where to find information about configuring FortiGate and EMS.

    FortiGate

    See the FortiOS Handbook - Security Profiles.

    EMS

    See the FortiClient EMS Administration Guide.

  2. (Administrators) Prepare to provision FortiClient. See Provisioning Preparation. Administrators can choose which FortiClient modules to install. See FortiClient setup types and modules.
  3. (Administrators) Provision FortiClient on endpoints. See Provisioning.

    After FortiClient installs on endpoints, FortiClient Telemetry attempts connection to FortiGate or EMS. See FortiClient Telemetry.

    After FortiClient Telemetry connects to FortiGate or EMS, FortiClient receives a profile from FortiGate and/or EMS. The computer with FortiClient installed and FortiClient Telemetry connected is now a managed endpoint.

  4. (Administrators) Manage endpoints using EMS. Administrators can also use FortiOS to monitor endpoints.
  5. (Endpoint users) Configure the installed components using FortiClient. Depending on what FortiClient modules were installed, whether FortiGate compliance rules are used, and whether an EMS administrator has locked settings, endpoint users can configure none or some of the following modules:
    • Sandbox Detection
    • AntiVirus
    • Web Filter
    • Application Firewall
    • Remote Access
  6. (Endpoint users) Use the installed modules in FortiClient. Depending on what modules were installed, one, more, or all of the following tabs are available in FortiClient:
    • Compliance & Telemetry
    • Malware Protection
    • Web Filter
    • Application Firewall
    • Vulnerability Scan
    • Remote Access